Hi,
SERVER: windows server 2012 R2
while generating the keytab file by using the KTPASS command, encryption key for encryption type AES128-SHA1 and AES256-SHA1 gets changed for the same domain user and password.
while in case of encryption type RC4-HMAC-NT, encryption remains same for same domain user and password.
As per my knowledge, security patch KB4103715 is installed on windows server 2012 R2 machine after that while generating the keytab file from KTPASS command encryption key for AES128-SHA1 and AES256-SHA1 becomes different from the encryption keys generated before installing the patch KB4103715 for the same domain user, password and same encryption type.
Before installation of patch KB4103715 all the respective generated encryption keys [for ASE128, ASE256] were same for same domain user and password.
is the reason in change of encryption keys for AES128 and AES256 is the installation of patch KB4103715;
is the patch KB4103715 is affecting the key generation logic of ktpass command.
please suggest.
Thank You